Elasticsearch Software Bill of Materials (SBOM)

Is there a published SBOM anywhere for Elasticsearch or any other document that shares all the components/libraries used within the application? This would be helpful when investigating security vulnerabilities and determining if a specific vulnerability affects Elasticsearch.

Welcome to our community! :smiley:

I don't believe this is something we publish, nor can I find a reference for it internally. I would suggest you reach out to security@elastic.co as per Security issues | Elastic.

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.